Why You Should Sign In With Google, Facebook, or Apple
|Are you still creating user accounts everywhere? Maybe you should stop and sign in with your Google, Facebook, or Apple account instead. It might just be more secure2;and it7;s definitely more secure if you7;re not currently using a password manager.
One Strong Password With No Password Reuse
If you7;re creating user accounts for each service you use, there7;s a good chance you7;re reusing passwords or using simpler passwords that are easy to remember. Then, when a website is breached and leaks your password, an attacker could use those email and password combinations to get access to your accounts. DoorDash losing 5 million logins was just the most recent example, but such breaches happen frequently.
That7;s why we recommend using a password manager: You can create strong, unique passwords for each service you use and store them in your password manager7;s secure vault. But, unfortunately, most people don7;t use password managers.
If you sign in with Google, Facebook, or Apple, you can create a strong, unique password and remember it. You just have to remember that one password for your main account. It7;s kind of like using a password manager, but it7;s a little easier for the average person to get started with.
There7;s another significant advantage to signing in with Google, Facebook, or Apple, too: Two-factory security.
Physical Security Keys and Other Two-Factor Tricks
You have many more options for locking down your Google, Facebook, and Apple accounts. For example, you can require a YubiKey or a Google Titan Security Key when signing into your Google or Facebook account. Other options like a code-generator app, app-based authentication, and SMS-based authentication are also available.
If you sign into other services with a Google or Facebook account, your two-factor authentication method is effectively securing that other account, too. Other services don7;t generally have such a wide variety of two-factor options and support for hardware security keys2;in fact, they may not offer two-factor authentication options at all.
Apple doesn7;t offer support for physical security keys like this. But, when you use Sign in With Apple and sign in on another device, you7;ll be prompted to enter a verification code sent to your trusted Apple device or phone number. Your Apple account and its two-factor authentication becomes the security key to your other accounts.
What About Privacy?
You might be concerned about this because of privacy. Do you really want Facebook or Google knowing about every other site you have an account with? And do you really want every app you7;re using seeing all your Facebook information?
Well, Facebook and Google perform some tracking anyway, and there7;s a good chance they have an idea of what apps and services you use. And don7;t worry: Services you7;re signing into can7;t see all the information in your Facebook or Google accounts. The service uses OAuth and gets only the information you choose to give it about your account.
Sure, if you sign in via Facebook or Google, the app gets access to your email address2;but you7;d have to provide that email address if you were signing up for a separate account with that service.
If you7;re really concerned about privacy, you should take a look at Sign in With Apple. Apple7;s been talking a lot about privacy, but it7;s not just talk. Sign in With Apple lets you hide your email address2;it will automatically generate a unique, random email address that forwards to your regular email address. Services actually get less information about you than if you created a separate account with your regular email address. It7;d be nice to see Google or Facebook offer something like this, too.
It7;s Like a More User-Friendly Password Manager
Even if you don7;t want to use a Google, Facebook, or Apple account to sign in everywhere, we hope you7;ll take the most important advice and use a password manager. Your password manager can generate and store strong, unique passwords for all your online accounts. Don7;t reuse passwords or you7;re putting yourself at risk.
For people who don7;t want to use a password manager2;well, that7;s why SIgn in With Google, Facebook, and Apple are so convenient. If you know someone that absolutely won7;t use a password manager, it7;s a lot better to have them signing in with a secure main Google, Facebook, or Apple account rather than reusing the same passwords on different websites.
Signing in with other types of accounts would also be fine, but other such services are less widespread. For example, some services like your sign in with a Twitter account, but many more services support Facebook and Google accounts.